richardk/iso27diy-corp
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Cleaned up Literature folder

Browse source
This commit is contained in:
Richard Kranendonk 2026-05-18 12:48:01 +02:00
parent 73a6380034
commit fe5eda4e05
586 changed files with 53911 additions and 2475 deletions
Download patch file Download diff file Expand all files Collapse all files

2
Corpus/Various/Business processes/DevSecOps and ISO 27k.md
View file

@ -4,4 +4,4 @@ How do the controls fit in with DevSecOps?
Related:
[ISO 27001 A.14.2.8 System security testing](../../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A.14.2.8%20System%20security%20testing.md)
[ISO 27001 A.14.2.9 System acceptance testing](../../Standards/ISO27x/legacy/ISO%2027001%202013/ISO%2027001%20A.14.2.9%20System%20acceptance%20testing.md)
[Red, Blue, and Purple Teams](../../Literature%20notes/Red,%20Blue,%20and%20Purple%20Teams.md)
[Red, Blue, and Purple Teams](../../Information%20Security/Red,%20Blue,%20and%20Purple%20Teams.md)

8
Corpus/Various/Business processes/Secure Development Lifecycle.md Normal file
View file

@ -0,0 +1,8 @@
# Secure Development Lifecycle (SDLC)
https://hackernoon.com/what-is-secure-sdlc
related to [a-8.25-Secure-development-life-cycle](../../Standards/ISO27x/OST/27002/EN/a-8.25-Secure-development-life-cycle.md)

10
Corpus/Various/Business processes/Security in Development.md Normal file
View file

@ -0,0 +1,10 @@
[OWASP Top 10 CI-CD Security Risks](../../Standards/other/OWASP%20Top%2010%20CI-CD%20Security%20Risks.md)
[a-8.25-Secure-development-life-cycle](../../Standards/ISO27x/OST/27002/EN/a-8.25-Secure-development-life-cycle.md)
[a-8.26-Application-security-requirements](../../Standards/ISO27x/OST/27002/EN/a-8.26-Application-security-requirements.md)
[a-8.27-Secure-system-architecture-and-engineering-principles](../../Standards/ISO27x/OST/27002/EN/a-8.27-Secure-system-architecture-and-engineering-principles.md)
[a-8.28-Secure-coding](../../Standards/ISO27x/OST/27002/EN/a-8.28-Secure-coding.md)
NSA has released guidance asking companies to switch to memory-safe languages [PDF](https://media.defense.gov/2022/Nov/10/2003112742/-1/-1/0/CSI_SOFTWARE_MEMORY_SAFETY.PDF)
[Memory safety Wikipedia](https://en.wikipedia.org/wiki/Memory_safety?wprov=sfti1)

BIN
Corpus/Various/Business processes/ci-cd-pipeline-security-best-practices.pdf Normal file
View file

Binary file not shown.

BIN
Corpus/Various/Business processes/secure_data_lifecycle.jpeg Normal file
View file

Binary file not shown.
Side by side

After

Width:  |  Height:  |  Size: 146 KiB